PT-2026-50561 · Black Lantern Security · Bbot

Published

2026-06-17

Updated

2026-06-17

CVE-2026-12566

CVSS v3.1

3.1

Low

Vector

AV:N/AC:H/PR:N/UI:R/S:U/C:L/I:N/A:N

The docker pull module uses the realm parameter from a Docker registry's WWW-Authenticate response header as the authentication endpoint without validation. An attacker in a man-in-the-middle position between bbot and a Docker registry could modify this header to redirect the authentication request to an arbitrary endpoint, potentially leaking authentication tokens.

Fix

SSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-918

Related Identifiers

CVE-2026-12566

Affected Products

Bbot

PT-2026-50561 · Black Lantern Security · Bbot

CVE-2026-12566

Weakness Enumeration

Related Identifiers

Affected Products

References · 1